Thephpfactory Auction Factory — known CVE vulnerabilities
Every CVE whose affected-product data names Thephpfactory Auction Factory, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2018-17374 — CVSS 9.8 (critical): SQL Injection exists in the Auction Factory 4.5.5 component for Joomla! via the filter_order_Dir or filter_order parameter.